US12406055B2ActiveUtilityA1

System and method for identifying and redirecting incoming unauthorized data access requests

61
Assignee: BANK OF AMERICAPriority: Nov 10, 2022Filed: Nov 10, 2022Granted: Sep 2, 2025
Est. expiryNov 10, 2042(~16.3 yrs left)· nominal 20-yr term from priority
G06F 21/45G06F 2221/034G06F 21/53
61
PatentIndex Score
0
Cited by
26
References
20
Claims

Abstract

Embodiments of the present invention provide a system for identifying and redirecting incoming unauthorized data access requests. The system is configured for continuously monitoring one or more incoming data access requests from one or more sources, identifying that a data access request of the one or more incoming data access requests is an unauthorized request, redirecting the data access request to a controlled environment, performing one or more actions in the controlled environment to capture one or more interactions associated with the data access request within the controlled environment, and automatically generating one or more controls to secure a real-time environment based on the one or more interactions captured within the controlled environment.

Claims

exact text as granted — not AI-modified
The invention claimed is: 
     
       1. A system for identifying and redirecting incoming unauthorized data access requests, the system comprising:
 at least one network communication interface; 
 at least one non-transitory storage device; and 
 at least one processing device coupled to the at least one non-transitory storage device and the at least one network communication interface, wherein the at least one processing device is configured to:
 continuously monitor one or more incoming data access requests from one or more sources; 
 identify that a data access request of the one or more incoming data access requests is an unauthorized request, wherein the data access request is associated with accessing data in a real-time environment; 
 in response to identifying that the data access request is unauthorized, instantaneously generate a controlled environment that has same operational functionalities and visual functionalities as that of the real-time environment; 
 redirect the data access request to the controlled environment; 
 perform one or more actions in the controlled environment to capture one or more interactions associated with the data access request within the controlled environment; and 
 automatically generate one or more controls to secure the real-time environment based on the one or more interactions captured within the controlled environment. 
 
 
     
     
       2. The system of  claim 1 , wherein the at least one processing device is configured to identify that the data access request is the unauthorized request based on data received from one or more third party systems, wherein the data comprises information associated with compromised authentication credentials in one or more security data breaches. 
     
     
       3. The system of  claim 1 , wherein the at least one processing device is configured to identify that the data access request is the unauthorized request based on determining that data access request is initiated from an anonymous Internet Protocol address. 
     
     
       4. The system of  claim 1 , wherein the at least one processing device is configured to wherein the at least one processing device is configured to identify that the data access request is the unauthorized request based on determining that data access request is initiated from a known compromised proxy service. 
     
     
       5. The system of  claim 1 , wherein the at least one processing device is further configured to capture telemetry data associated with the data access request, wherein the telemetry data comprises at least one of device cookies, operating system, screen resolution, browser information, Internet Protocol address, latitude and longitude data, and a Media Access Control (MAC) address associated with the data access request. 
     
     
       6. The system of  claim 1 , wherein performing the one or more actions comprises:
 determining a type of the data access request; 
 instantaneously generating, via an artificial intelligence engine, fictitious data based on the type of the data access request; and 
 providing the fictitious data to the data access request within the controlled environment. 
 
     
     
       7. A computer program product for identifying and redirecting incoming unauthorized data access requests, the computer program product comprising a non-transitory computer-readable storage medium having computer executable instructions for causing a computer processor to perform the steps of:
 continuously monitoring one or more incoming data access requests from one or more sources; 
 identifying that a data access request of the one or more incoming data access requests is an unauthorized request, wherein the data access request is associated with accessing data in a real-time environment; 
 in response to identifying that the data access request is unauthorized, instantaneously generating a controlled environment that has same operational functionalities and visual functionalities as that of the real-time environment; 
 redirecting the data access request to the controlled environment; 
 performing one or more actions in the controlled environment to capture one or more interactions associated with the data access request within the controlled environment; and 
 automatically generating one or more controls to secure the real-time environment based on the one or more interactions captured within the controlled environment. 
 
     
     
       8. The computer program product of  claim 7 , wherein the computer executable instructions cause the computer processor to perform the step of identifying that the data access request is the unauthorized request based on data received from one or more third party systems, wherein the data comprises information associated with compromised authentication credentials in one or more security data breaches. 
     
     
       9. The computer program product of  claim 7 , wherein the computer executable instructions cause the computer processor to perform the step of identifying that the data access request is the unauthorized request based on determining that data access request is initiated from an anonymous Internet Protocol address. 
     
     
       10. The computer program product of  claim 7 , wherein the computer executable instructions cause the computer processor to perform the step of identifying that the data access request is the unauthorized request based on determining that data access request is initiated from a known compromised proxy service. 
     
     
       11. The computer program product of  claim 7 , wherein the computer executable instructions cause the computer processor to perform the step of capturing telemetry data associated with the data access request, wherein the telemetry data comprises at least one of device cookies, operating system, screen resolution, browser information, Internet Protocol address, latitude and longitude data, and a Media Access Control (MAC) address associated with the data access request. 
     
     
       12. The computer program product of  claim 7 , wherein performing the one or more actions comprises:
 determining a type of the data access request; 
 instantaneously generating, via an artificial intelligence engine, fictitious data based on the type of the data access request; and 
 providing the fictitious data to the data access request within the controlled environment. 
 
     
     
       13. A computer implemented method for identifying and redirecting incoming unauthorized data access requests, wherein the method comprises:
 continuously monitoring one or more incoming data access requests from one or more sources; 
 identifying that a data access request of the one or more incoming data access requests is an unauthorized request, wherein the data access request is associated with accessing data in a real-time environment; 
 in response to identifying that the data access request is unauthorized, instantaneously generating a controlled environment that has same operational functionalities and visual functionalities as that of the real-time environment; 
 redirecting the data access request to the controlled environment; 
 performing one or more actions in the controlled environment to capture one or more interactions associated with the data access request within the controlled environment; and 
 automatically generating one or more controls to secure the real-time environment based on the one or more interactions captured within the controlled environment. 
 
     
     
       14. The computer implemented method of  claim 13 , wherein identifying that the data access request is the unauthorized request is based on data received from one or more third party systems, wherein the data comprises information associated with compromised authentication credentials in one or more security data breaches. 
     
     
       15. The computer implemented method of  claim 13 , wherein identifying that the data access request is the unauthorized request is based on determining that data access request is initiated from an anonymous Internet Protocol address. 
     
     
       16. The computer implemented method of  claim 13 , wherein identifying that the data access request is the unauthorized request is based on determining that data access request is initiated from a known compromised proxy service. 
     
     
       17. The computer implemented method of  claim 13 , wherein the method comprises capturing telemetry data associated with the data access request, wherein the telemetry data comprises at least one of device cookies, operating system, screen resolution, browser information, Internet Protocol address, latitude and longitude data, and a Media Access Control (MAC) address associated with the data access request. 
     
     
       18. The computer implemented method of  claim 13 , wherein performing the one or more actions comprises:
 determining a type of the data access request; 
 instantaneously generating, via an artificial intelligence engine, fictitious data based on the type of the data access request; and 
 providing the fictitious data to the data access request within the controlled environment. 
 
     
     
       19. The system of  claim 1 , wherein the at least one processing device is further configured to purge the controlled environment in response to capturing the one or more interactions associated with the data access request within the controlled environment. 
     
     
       20. The computer program product of  claim 7 , wherein the computer executable instructions cause the computer processor to perform the step of purging the controlled environment in response to capturing the one or more interactions associated with the data access request within the controlled environment.

Cited by (0)

No later patents cite this yet.

References (0)

No backward citations on record.